Embodiments of the invention relate to obtaining forensic information for an anonymous attack of digital content without variations in a broadcast encryption system. In one embodiment a media device, being configured to record digital content on recordable media, receives digital content, a unified media key block, and a recording key table. The device calculates a set of recording keys from the recording key table using a media key variant from the unified media key block. The device then generates a title key and encrypts by the digital content in the generated title key. The device then encrypts the generated title key in each one of the calculated recording keys, adds a header including the encrypted titles keys to the encrypted digital content, and stores the encrypted digital content with the header on recordable media.
|
1. A method of obtaining forensic information for an anonymous attack of digital content without variations in a broadcast encryption system, comprising:
receiving, by a media device, digital content, a unified media key block, and a recording key table, said device including a processor and being configured to record digital content on recordable media;
calculating, by said device, a set of recording keys from said recording key table using a media key variant from said unified media key block;
generating, by said device, a title key;
encrypting, by said device, said digital content with said generated title key;
encrypting, by said device, said generated title key with each one of said calculated recording keys; and
adding, by said device, a header including said encrypted title key to said encrypted digital content; and
storing, by said device, said encrypted digital content with said header on recordable media.
7. A system of obtaining forensic information for an anonymous attack of digital content without variations in a broadcast encryption system, comprising:
a recording device for generating and outputting a recording of digital content, said device including a processor in communication with a storage medium and a memory module, said processor executing a program that:
obtains a media key variant from a unified media key block;
calculates a set of recording keys from a recording key table and said media key variant,
generates a single title key,
encrypts said digital content with said generated title key,
encrypts said title key with each of the set of recording keys,
records said encrypted title key in a header of said encrypted content, and
using said encrypted title key for identifying, to a content protection licensing agency, one or more device keys being used by a server for an anonymous attack of said digital content.
15. A method of obtaining forensic information for an anonymous attack of digital content without variations in a broadcast encryption system, comprising:
receiving, by a playback media device, encrypted digital content, said playback device including a processor and being configured to play digital content recorded on media;
wherein a recording media device previously: (i) received digital content, a unified media key block, and a recording key table, (ii) calculated a set of recording keys from said recording key table by using a media key variant from said unified media key block, (iii) generated a title key, (iv) encrypted said digital content with said generated title key, and (v) encrypted said generated title key with each one of said generated recording keys;
determining, by said playback device, which of said encrypted title keys said playback device can decrypt; and
using said encrypted title key to decrypt said digital content.
13. A computer program product of obtaining forensic information for an anonymous attack of digital content without variations in a broadcast encryption system, said computer program product comprising a non-transitory computer usable medium having computer usable program code embodied therewith, said computer usable program code comprising computer usable program code configured to:
receive digital content, a unified media key block, and a recording key table;
calculate a set of recording keys from said recording key table using a media key variant calculated by said recording device from said unified media key block;
generate a title key;
encrypt said digital content with said generated title key;
encrypt said generated title key with each one of said generated recording keys;
add a header including said encrypted title key to said encrypted digital content; and
store said encrypted digital content with said header on recordable media.
2. The method of
3. The method of
providing, by said device, a label for each recording key in said recording key table, said label enables a playback device to recognize said each recording key; and
storing, by said device, said label in said header.
4. The method of 2, wherein said calculating a recording key table comprises calculating a table comprising an N out of M code.
5. The method of
binding the recording keys to an identifier before encrypting said title key.
6. The method of
transforming said title key based on usage rules associated with said digital content prior to encrypting said digital content.
8. The system of
9. The system of
12. The system of
14. The computer program product of
|
|||||||||||||||||||||||||
The present invention relates to content protection, and more specifically, to recording keys in broadcast encryption systems.
The rapid rise in illegal copying of digital entertainment content has necessitated increasingly sophisticated content protection systems. Broadcast encryption cryptography is one content protection approach that has become very popular in recent years because it is especially well suited for content protection systems. Broadcast encryption is essential to provide secure key management on physical media. For example, the Content Protection for Recordable Media (CPRM) system has been developed to protect content on DVD recordable discs and on Secure Digital (SD) flash memory cards. More recently, the Advanced Access Content System (AACS) has been developed to protect content on high-definition blue-laser DVDs. Both CPRM and AACS are fundamentally based on broadcast encryption.
There is a certain type of attack that broadcast-encryption-based systems are susceptible to. This attack is called the anonymous attack. In this attack, the attackers steal one or more sets of device keys. With these sets of device keys, the attackers are able to make unauthorized copies of the content. Rather than putting those device keys into a circumvention device and selling it as a copying device, however, the attackers may put the keys in a server and offer a copying service instead of a copying device. Whether the attackers are selling a copying device, or offering a copying service, it is the goal of the licensing agency to determine precisely which sets of keys the attackers are using, so that they can be revoked on new content.
However, this determination is substantially harder in the case of an anonymous attack than it is in the case of a circumvention device. In the case of the circumvention device, the licensing agency can bring the device into the lab and test it by giving it a series of special forensic media key blocks (MKBs), which are designed so that only a fraction of the devices in the world can calculate the right key. In the anonymous attack, forensic MKBs cannot be used; the MKBs must be production MKBs: all devices can use them.
To combat anonymous attacks, the AACS system has a special forensic feature: in addition to the media key, which fundamentally protects the DVD, and which all devices can calculate, there are 1024 media key variants. The idea is that the content (such as a digital movie) is authored so that at certain points in the movie, there are logically identical but differently encrypted variations. A given device can calculate only one media key variant, and therefore play only one of the variations. Likewise, the anonymous attack server must reveal at least one media key variant when it decrypts the content. (Of course, the server, unlike a licensed device, could have more than one variant, because it might be comprised of keys from more than one device). Nonetheless, by carefully observing the sequence of variations the server picks, the licensing agency can determine which sets of device keys the server must have. This process is commonly called tracing traitors.
According to one embodiment of the present invention, a method comprises: receiving digital content, a media key block, and a recording key table in a recording device; generating a set of recording keys from the recording key table using a media key variant from the media key block; generating a title key; encrypting the digital content in the generated title key; and encrypting the selected title key in each one of the generated recording keys.
According to another embodiment of the present invention, a method comprises: receiving recorded digital content having been recorded by encrypting the content in a title key and having a header including the title key encrypted in a plurality of recording keys; modifying the header such that it contains different title keys encrypted by different recording keys; sending the digital content with the modified header to a copying service; receiving a copied version of the digital content from the copying service; and performing traitor tracing on the received copied version to determine which of a plurality of known media key variants the server possesses.
According to a further embodiment of the present invention, a system comprises: a recording device for generating and outputting a recording of digital content, the recording device being able to calculate media key variant from a media key block, a recording key processor, and an encryption processor; a set of recording keys generated by the recording key processor from a recording key table and the media key variant; a single title key generated by the recording key processor; and an encryption processor for encrypting the digital content in the generated title key, the encryption processor encrypting the generated title key in every one of the recording keys.
According to another embodiment of the present invention, a computer program product for broadcast encryption comprises: a computer usable medium having computer usable program code embodied therewith, the computer usable program code comprising: computer usable program code configured to: receive digital content, a media key block, and a recording key table in a recording device; generate a set of recording keys from the recording key table using a media key variant from the media key block; generate a title key; encrypt the digital content in the generated title key; and encrypt the generated title key in each one of the generated recording keys.
Embodiments of the invention provide a broadcast encryption system which includes a method to make a recording, so that even content without variations can be used to obtain useful forensic information against an anonymous attack.
AACS has a separate set of keys, called sequence keys, for its tracing traitors system. The tracing traitors technology works well for prepared content, which can be deliberately authored with multiple variations. However, it does not work at all when the content does not have variations. With some content types, it is especially difficult to prepare the content with variations. For example, a copy-protected recording of a TV program off the air will not have variations. Thus, most of the applications of the CPRM system could not take advantage of this type of forensics, and tracing traitors technology is absent in the CPRM system.
In embodiments of the present invention, recording devices use its media key variant to calculate a set of recording keys. Each media key variant potentially creates a unique set of recording keys; however, in normal operation, all such sets are designed so that any two sets have at least one key in common. In normal operation, when a device makes a protected recording, it picks a random key, called a title key, and encrypts the content in that title key. It then encrypts that title key in every one of the recording keys it knows and records these encryptions in a header for the recording. Later when a different device wants to play back the recording, it searches through the list of encrypted title keys in the header until it finds one it can decrypt (there will always be at least one, because any two proper recording key sets must have at least one key in common), and then it has the title key to decrypt and play back the recording. To facilitate the playing device's search, the header contains the labels of the recording keys used, and the devices know the labels of its recording keys. This is how the system works in normal operation.
In a forensic situation, however, the licensing agency can modify a header so that different recording keys encrypt different title keys. Also, the rule for normal operation that any two devices are guaranteed to have at least one key in common may be abandoned during the forensic situation. The agency observes which title key the attacker's server returns, which tells the agency one of the recording keys that server has. In the simplest scenario, the attacker's servers return title keys in the clear to the user, who then uses his own decryption program to get the content in the clear. Of course, the attackers can be more subtle: the attackers could have their own decryption client, difficult to reverse-engineer, and deliver the title keys to this client in an obfuscated way. However, this improved attack scenario does not present any insurmountable obstacles to the licensing agency. The licensing agency can always look at the “decrypted” content from this client and deduce which title key(s) must have been used, even if the decryption itself is meaningless data.
In any case, after multiple tests, using a standard tracing traitors approach, the agency can determine which media key variant or variants the server has. Then, again using a standard tracing traitors approach, the agency uses the variants from multiple tests to determine precisely which device keys the server must have. Then, the keys can be revoked, and the attack foiled.
Note that recording keys require a two-stage process to trace to the individual device keys, whereas if there were variations in the content itself, the tracing can usually be done in one stage: the media key variant or variants can usually be deduced directly from the variations in the content. However, the recording keys work regardless of whether the content has variations; in effect, the keys themselves provide pseudo-variations that give the forensics to combat the attack.
Referring now to
In more detail, both the recording device 10 and the playback device 16 have access to a recording key table 24 and a unified media key block 25, called hereafter the “uMKB” 25. The recording key table 24 and the uMKB 25 are files that may be associated with the digital content 12, or they may be held in common amongst many pieces of content. For example, these files may be part of a content protection system on a home entertainment network. Also, these two files might be combined in a single file. The recording key table 24 is described in more detail below and is also shown in
Recording device 10 calculates a media key variant 20 from the uMKB 25 that is associated with the recording device 10, and also generates a title key 28. A recording key processor 22 uses the media key variant 20 as well as the recording key table 24 to calculate a set of recording keys 26. An encryption processor 30 encrypts the digital content 12 using the title key 28. The encryption processor 30 also encrypts the title key 28 in every recording key known to the recording device 10, and includes these encrypted title keys in a header 15 that is added to the encrypted content 14 in the output file 17 produced by the recording device 10.
The encrypted content 14 is played back by a playback device 16, which includes a decryption processor 32 and its own recording key processor 22. The playback device 16 has access to the recording key table 24 and the uMKB 25, allowing it to calculate its own media key variant, and also its own set of recording keys. In general, the playback device's 16 recording key set is not the same set as the recording device 10's recording key set 26. However, the playback device 16 will have at least one recording key in common with the playback device 16. The decryption processor 32 searches through the header 15 in the encrypted content for an encrypted title key that was encrypted with a recording key that playback device 16 has. Thus, the playback device can decrypt the encrypted title key and then use it to decrypt the encrypted digital content 14 and play it back through the playback mechanism 18.
The content is then encrypted in a randomly generated title key, in step 42. In step 44 the title key is encrypted in every one of the recording keys known to the device. These encrypted title keys are then recorded in the header of the recording, in step 46 and the encrypted recording is output in step 48.
In step 72, the history of known attacker's recording keys is examined using standard tracing traitors techniques to determine if the attacker's media key variant or variants are known yet. If so, the process proceeds to step 74. Otherwise, the process loops and repeats the process at step 62. Note at this point the recording key table is changed, so that new information can be obtained in the new test. How the recording key table is changed depends on the particular tracing traitors method in use. For example, if the history reveals one of sixteen media key variants, then the new recording key table would focus on these variants, making sure that they would have no title keys and hence recording keys in common. (This is the opposite of what happens in normal operation.)
In step 74, the media key variants are input to a conventional traitor tracing algorithm. The purpose of this tracing algorithm is to eventually determine which device or devices have been compromised in building the attacker's server. Then, the devices' keys can be revoked in subsequent uMKBs. However, tracing traitors algorithms rarely can determine the guilty devices in a single step. So, as required by the algorithm, the process 60 usually must be repeated many times before actual revocation can occur.
Referring now to
The licensing agency produces the recording key table. It can be part of the MKB, or it can be a separate file. If it is in a separate file, different recording key tables can be associated with each piece of content. The table must have the property that any two rows in the table have at least one recording key in common. There are well-known techniques to ensure this. If each row is thought of as a “codeword” and each recording key is thought of as a “symbol”, ensuring this property is a well-studied problem in coding theory. For example, an “N out of M” code, where each device has N keys out of a total of M keys in the system, is guaranteed to have this property if N>M/2. In addition, a randomly-generated code can be easily fixed to have the desire property. All such encodings are within the scope of this invention.
In one embodiment of the invention, the recording key table contains a label or name for each recording key. These are encrypted in the table just like the keys. Then, when a device records a header by encrypting the title key with each of its recording keys, it also stores the labels of those keys in the clear. Then, another device can process the header more rapidly, by searching for labels for which it knows the recording key. Otherwise, the device would have to perform all the decryptions and determine which decryption yields the valid title key by some other means.
In many applications, it is very convenient if the uMKB and the recording key table are not secret; they are just simple files. However, this opens up an attack: a user can make an unauthorized copy of a piece of content not by decrypting it, but instead by merely copying the uMKB and recording key table along with the encrypted bits. This is a classic problem in content protection, and has a simple solution: the fundamental protection key is not the one that is immediately extracted from the uMKB, but is instead a “bound” version of it. A bound key is a key that has been transformed with an identifier that is unique to the user, and cannot be changed by him. This transformation can be as simple as exclusive-ORing the key with the identifier. The transformation guarantees two users will have different content protection keys, even if they happen to have the same uMKB, and therefore cannot make unauthorized copies between themselves simply by sharing encrypted content.
In the interest of simplicity and clarity of explanation, and because the binding transformation is well known in content protection schemes, we have omitted the binding step in
There is another similar but more subtle attack that can occur in content protection systems when different content has different privileges. For example, a video recording system might have the rule that unlimited copies of over-the-air terrestrial broadcasts can be made for private use, but that premium pay-per-view broadcasts are not allowed to be copied. Such rules are called “usage rules” in the art. The attack is for the user to substitute more generous usage rules for more strict ones in a piece of content. The simple defense to this attack that is commonly used in content protection schemes is to tie the usage rules to the content's particular title key or keys. A common way to make this tie is to exclusive-OR a cryptographic hash of the usage rules with the title key before the title key is encrypted. Then, if the user modifies the usage rules, the title key calculation will be incorrect, and the content will be useless. Such a transformation of the title key 28 before encrypting it with the recording keys 26 is within the scope of this invention.
Note that if the attacker's server knows multiple recording keys in a given content header, and the recording keys are telling it different title keys, it knows it is under forensic test. Of course, it can refuse to reveal any title keys in that case, but even that refusal reveals information to the licensing agency. It is more troublesome, though, if the server is a subscription service. Then the server, knowing this “subscriber” is, in fact, the licensing agency, would refuse all future service. The licensing agency would have to re-subscribe under a different name, which would undoubtedly cost more money to perform the test.
To solve this problem, in another embodiment of the present invention the content is encrypted with multiple title keys. This does not mean the content has variations—it just means that different parts of the content use different title keys. For example, a video recording could change the title key every minute of video. This would have a negligible impact on the playback, but greatly complicate the job of the attackers. Now it is completely normal for the header to reveal multiple title keys, and it is much more difficult for the attacker to determine he is under forensic test. In this embodiment, it is useful for the title keys to have labels just like recording keys do, and for those labels to be encrypted by the recording keys in the header just like the title keys themselves are. It is also useful if the recording devices normally randomize the order of the encryptions in the content header. Otherwise, the attackers might be able to deduce they are in the forensic situation because of the absence of some systematic structure of the title keys in the header. Regarding the tracing traitors approach to determine which media key variant(s) the server has, all approaches described in the art are within the scope of this invention. Improved tracing approaches which trace “coalitions” rather than individuals may be used with the present invention.
In addition, in another embodiment of this invention, rather than using full-length keys in the recording table, it is possible, without reducing security, to store smaller-length values, and then cryptographically combine those values with the media key to produce a full-length key. For example, if the stored recording keys were 64-bits, and the media key was 128-bits, and the system was using 128-bit AES encryption, the device could expand the 64-bits by concatenating a 64-bit constant defined by the system, and then use the media key to decrypt the resulting value. This “decryption” would be suitably random, and could serve as the actual 128-bit recording key. Thus, the size of the recording key table can be reduced. All similar cryptographic combinations are within the scope of this invention.
As can be seen from the above disclosure, embodiments of the invention provide a broadcast encryption system that uses recording keys to facilitate traitor tracing. It will be appreciated that the present invention may be adapted to a variety of types of broadcast encryption systems including, for example, systems using either separate or unified media key block approaches.
As will be appreciated by one skilled in the art, the present invention may be embodied as a system, method or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment (including firmware, resident software, micro-code, etc.) or an embodiment combining software and hardware aspects that may all generally be referred to herein as a “circuit,” “module” or “system.” Furthermore, the present invention may take the form of a computer program product embodied in any tangible medium of expression having computer usable program code embodied in the medium.
Any combination of one or more computer usable or computer readable medium(s) may be utilized. The computer-usable or computer-readable medium may be, for example but not limited to, an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, device, or propagation medium. More specific examples (a non-exhaustive list) of the computer-readable medium would include the following: an electrical connection having one or more wires, a portable computer diskette, a hard disk, a random access memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or Flash memory), an optical fiber, a portable compact disc read-only memory (CDROM), an optical storage device, a transmission media such as those supporting the Internet or an intranet, or a magnetic storage device. Note that the computer-usable or computer-readable medium could even be paper or another suitable medium upon which the program is printed, as the program can be electronically captured, via, for instance, optical scanning of the paper or other medium, then compiled, interpreted, or otherwise processed in a suitable manner, if necessary, and then stored in a computer memory. In the context of this document, a computer-usable or computer-readable medium may be any medium that can contain, store, communicate, propagate, or transport the program for use by or in connection with the instruction execution system, apparatus, or device. The computer-usable medium may include a propagated data signal with the computer-usable program code embodied therewith, either in baseband or as part of a carrier wave. The computer usable program code may be transmitted using any appropriate medium, including but not limited to wireless, wire line, optical fiber cable, RF, etc.
Computer program code for carrying out operations of the present invention may be written in any combination of one or more programming languages, including an object oriented programming language such as Java, Smalltalk, C++ or the like and conventional procedural programming languages, such as the “C” programming language or similar programming languages. The program code may execute entirely on the user's computer, partly on the user's computer, as a stand-alone software package, partly on the user's computer and partly on a remote computer or entirely on the remote computer or server. In the latter scenario, the remote computer may be connected to the user's computer through any type of network, including a local area network (LAN) or a wide area network (WAN), or the connection may be made to an external computer (for example, through the Internet using an Internet Service Provider).
The present invention is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems) and computer program products according to embodiments of the invention. It will be understood that each block of the flowchart illustrations and/or block diagrams, and combinations of blocks in the flowchart illustrations and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions/acts specified in the flowchart and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable medium that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable medium produce an article of manufacture including instruction means which implement the function/act specified in the flowchart and/or block diagram block or blocks.
The computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide processes for implementing the functions/acts specified in the flowchart and/or block diagram block or blocks.
The flowchart and block diagrams in the Figures illustrate the architecture, functionality, and operation of possible implementations of systems, methods and computer program products according to various embodiments of the present invention. In this regard, each block in the flowchart or block diagrams may represent a module, segment, or portion of code, which comprises one or more executable instructions for implementing the specified logical function(s). It should also be noted that, in some alternative implementations, the functions noted in the block may occur out of the order noted in the figures. For example, two blocks shown in succession may, in fact, be executed substantially concurrently, or the blocks may sometimes be executed in the reverse order, depending upon the functionality involved. It will also be noted that each block of the block diagrams and/or flowchart illustration, and combinations of blocks in the block diagrams and/or flowchart illustration, can be implemented by special purpose hardware-based systems that perform the specified functions or acts, or combinations of special purpose hardware and computer instructions.
The computer system can include a display interface 206 that forwards graphics, text, and other data from the communication infrastructure 204 (or from a frame buffer not shown) for display on a display unit 208. The computer system also includes a main memory 210, preferably random access memory (RAM), and may also include a secondary memory 212. The secondary memory 212 may include, for example, a hard disk drive 214 and/or a removable storage drive 216, representing, for example, a floppy disk drive, a magnetic tape drive, or an optical disk drive. The removable storage drive 116 reads from and/or writes to a removable storage unit 218 in a manner well known to those having ordinary skill in the art. Removable storage unit 218 represents, for example, a floppy disk, a compact disc, a magnetic tape, or an optical disk, etc. which is read by and written to by removable storage drive 216. As will be appreciated, the removable storage unit 218 includes a computer readable medium having stored therein computer software and/or data.
In alternative embodiments, the secondary memory 212 may include other similar means for allowing computer programs or other instructions to be loaded into the computer system. Such means may include, for example, a removable storage unit 220 and an interface 222. Examples of such means may include a program cartridge and cartridge interface (such as that found in video game devices), a removable memory chip (such as an EPROM, or PROM) and associated socket, and other removable storage units 220 and interfaces 222 which allow software and data to be transferred from the removable storage unit 220 to the computer system.
The computer system may also include a communications interface 224. Communications interface 224 allows software and data to be transferred between the computer system and external devices. Examples of communications interface 224 may include a modem, a network interface (such as an Ethernet card), a communications port, or a PCMCIA slot and card, etc. Software and data transferred via communications interface 224 are in the form of signals which may be, for example, electronic, electromagnetic, optical, or other signals capable of being received by communications interface 224. These signals are provided to communications interface 224 via a communications path (i.e., channel) 226. This communications path 226 carries signals and may be implemented using wire or cable, fiber optics, a phone line, a cellular phone link, an RF link, and/or other communications channels.
In this document, the terms “computer program medium,” “computer usable medium,” and “computer readable medium” are used to generally refer to media such as main memory 210 and secondary memory 212, removable storage drive 216, and a hard disk installed in hard disk drive 214.
Computer programs (also called computer control logic) are stored in main memory 210 and/or secondary memory 212. Computer programs may also be received via communications interface 224. Such computer programs, when executed, enable the computer system to perform the features of the present invention as discussed herein. In particular, the computer programs, when executed, enable the processor 202 to perform the features of the computer system. Accordingly, such computer programs represent controllers of the computer system.
From the above description, it can be seen that the present invention provides a system, computer program product, and method for implementing the embodiments of the invention. References in the claims to an element in the singular is not intended to mean “one and only” unless explicitly so stated, but rather “one or more.” All structural and functional equivalents to the elements of the above-described exemplary embodiment that are currently known or later come to be known to those of ordinary skill in the art are intended to be encompassed by the present claims. No claim element herein is to be construed under the provisions of 35 U.S.C. section 112, sixth paragraph, unless the element is expressly recited using the phrase “means for” or “step for.”
The terminology used herein is for the purpose of describing particular embodiments only and is not intended to be limiting of the invention. As used herein, the singular forms “a”, “an” and “the” are intended to include the plural forms as well, unless the context clearly indicates otherwise. It will be further understood that the terms “comprises” and/or “comprising,” when used in this specification, specify the presence of stated features, integers, steps, operations, elements, and/or components, but do not preclude the presence or addition of one or more other features, integers, steps, operations, elements, components, and/or groups thereof.
The corresponding structures, materials, acts, and equivalents of all means or step plus function elements in the claims below are intended to include any structure, material, or act for performing the function in combination with other claimed elements as specifically claimed. The description of the present invention has been presented for purposes of illustration and description, but is not intended to be exhaustive or limited to the invention in the form disclosed. Many modifications and variations will be apparent to those of ordinary skill in the art without departing from the scope and spirit of the invention. The embodiment was chosen and described in order to best explain the principles of the invention and the practical application, and to enable others of ordinary skill in the art to understand the invention for various embodiments with various modifications as are suited to the particular use contemplated.
Jin, Hongxia, Deen, Robert Glenn, Lotspiech, Jeffrey Bruce, Rutkowski, Matthew Francis, Bellwood, Thomas Alexander, Nin, Sigfredo Ismael
| Patent | Priority | Assignee | Title |
| 9595300, | Oct 21 2009 | TRUESIGHT COMMUNICATIONS LLC | Contextual chapter navigation |
| Patent | Priority | Assignee | Title |
| 4041249, | Dec 27 1974 | Dictaphone Corporation | Central dictation system with privacy signal used for transcribing scanning |
| 4634807, | Aug 23 1984 | British Technology Group Limited | Software protection device |
| 4694491, | Mar 11 1985 | GENERAL INSTRUMENT CORPORATION GIC-4 | Cryptographic system using interchangeable key blocks and selectable key fragments |
| 4864616, | Oct 15 1987 | Micronyx, Inc. | Cryptographic labeling of electronically stored data |
| 5058162, | Aug 09 1990 | Hewlett-Packard Company | Method of distributing computer data files |
| 5065429, | Apr 03 1989 | LANRALD DATA MGMT NV, LLC | Method and apparatus for protecting material on storage media |
| 5081677, | Aug 31 1990 | International Business Machines Corporation | Crypotographic key version control facility |
| 5177791, | Aug 30 1991 | INTERNATIONAL BUSINESS MACHINES CORPORATION, A CORP OF NY | Secure translation of usage-control values for cryptographic keys |
| 5247497, | Nov 18 1991 | AVAYA Inc | Security systems based on recording unique identifier for subsequent playback |
| 5272752, | Mar 16 1992 | Cisco Technology, Inc | Authorization code lockout mechanism for preventing unauthorized reception of transmitted data |
| 5345505, | Mar 04 1991 | Coding system for a data signal | |
| 5412723, | Mar 01 1994 | International Business Machines Corporation; IBM Corporation | Mechanism for keeping a key secret from mobile eavesdroppers |
| 5592552, | Aug 25 1993 | ALGORITHMIC RESEARCH LTD | Broadcast encryption |
| 5598470, | Apr 25 1994 | International Business Machines Corporation | Method and apparatus for enabling trial period use of software products: Method and apparatus for utilizing a decryption block |
| 5636276, | Apr 18 1994 | III Holdings 2, LLC | Device for the distribution of music information in digital form |
| 5651064, | Mar 08 1995 | 544483 ALBERTA LTD | System for preventing piracy of recorded media |
| 5668873, | Mar 27 1994 | Sony Corporation | Video signal processor with copy prevention function |
| 5680457, | Jan 18 1995 | LG Electronics Inc | System for updating an authorization memory |
| 5708632, | Oct 30 1995 | Sony Corporation | Methods and apparatus for controlling access to a recording disk |
| 5734719, | Oct 15 1993 | Toshiba Global Commerce Solutions Holdings Corporation | Digital information accessing, delivery and production system |
| 5754648, | May 12 1995 | Macrovision Corporation | Video media security and tracking system |
| 5754649, | May 12 1995 | Macrovision Corp. | Video media security and tracking system |
| 5796824, | Mar 16 1992 | Fujitsu Limited | Storage medium for preventing an irregular use by a third party |
| 5910987, | Feb 13 1995 | INTERTRUST TECHNOLOGIES CORP | Systems and methods for secure transaction management and electronic rights protection |
| 5949885, | Mar 12 1996 | Method for protecting content using watermarking | |
| 6020883, | Nov 29 1994 | Pinpoint Incorporated | System and method for scheduling broadcast of and access to video programs and other data using customer profiles |
| 6061451, | Sep 03 1996 | Kabushiki Kaisha Toshiba | Apparatus and method for receiving and decrypting encrypted data and protecting decrypted data from illegal use |
| 6064072, | Jun 08 1998 | ASML NETHERLANDS B V | Plasma focus high energy photon source |
| 6118873, | Apr 24 1998 | GLOBALFOUNDRIES Inc | System for encrypting broadcast programs in the presence of compromised receiver devices |
| 6134201, | Jun 30 1995 | Sony Corporation | Data recording apparatus, method therefor, data reproducing apparatus, method therefor and record medium |
| 6209092, | Jan 27 1997 | U S PHILIPS CORPORATION | Method and system for transferring content information and supplemental information relating thereto |
| 6285774, | Jun 08 1998 | GOOGLE LLC | System and methodology for tracing to a source of unauthorized copying of prerecorded proprietary material, such as movies |
| 6289455, | Sep 02 1999 | Crypotography Research, Inc.; Cryptography Research, Inc | Method and apparatus for preventing piracy of digital content |
| 6347846, | Jan 08 1996 | Kabushiki Kaisha Toshiba | Method and an apparatus to control copying from a data providing device to a data receiving device |
| 6370272, | Apr 07 1997 | International Business Machines Corporation | Multiple frame data hiding method and data detection method |
| 6381367, | May 29 1997 | Rovi Solutions Corporation | Method and apparatus for compression compatible video fingerprinting |
| 6434535, | Nov 13 1998 | HANGER SOLUTIONS, LLC | System for prepayment of electronic content using removable media and for prevention of unauthorized copying of same |
| 6442108, | Mar 25 1999 | MITSUMI ELECTRIC CO , LTD | Information recording/reproducing apparatus |
| 6442626, | Dec 28 1998 | Infineon Technologies AG | Copy protection system only authorizes the use of data if proper correlation exists between the storage medium and the useful data |
| 6535858, | Aug 28 1997 | Sony DADC Austria AG | Optical disc copy management system |
| 6556679, | Nov 20 1997 | Kabushiki Kaisha Toshiba | Copy-guard system and information recording medium used in the same system |
| 6563937, | Nov 28 2001 | Sony Corporation; Sony Electronics Inc. | Method and apparatus to detect watermark that are resistant to arbitrary deformations |
| 6587949, | Jun 26 1998 | Scenera Technologies, LLC | Secure storage device for transfer of data via removable storage |
| 6609116, | Apr 24 1998 | GLOBALFOUNDRIES Inc | System and method for securely updating copy-protected media |
| 6636966, | Apr 03 2000 | TUMBLEWEED HOLDINGS LLC | Digital rights management within an embedded storage device |
| 6738878, | Dec 28 2000 | MATSUSHITA ELECTRIC INDUSTRIAL CO , LTD | Verifying the integrity of a media key block by storing validation data in the cutting area of media |
| 6760445, | Nov 10 1997 | Deutsche Telekom AG | Method for identifying betrayers of proprietary data |
| 6760539, | Jul 09 1999 | Matsushita Electric Industrial Co., Ltd. | Optical disc, a recorder, a player, a recording method, and a reproducing method that are all used for the optical disc |
| 6775779, | Apr 06 1999 | Microsoft Technology Licensing, LLC | Hierarchical trusted code for content protection in computers |
| 6802003, | Jun 30 2000 | Intel Corporation | Method and apparatus for authenticating content |
| 6832319, | Apr 24 1998 | International Business Machines Corporation; Intel Corporation | Content guard system for copy protection of recordable media |
| 6839436, | Oct 16 2000 | GEMALTO SA; GEMATLO SA; Alcatel Lucent | Method for providing long-lived broadcast encrypton |
| 6856997, | Oct 27 2000 | LG Electronics Inc. | Apparatus and method for providing file structure for multimedia streaming service |
| 6857076, | Mar 26 1999 | Round Rock Research, LLC | Data security for digital data storage |
| 6888944, | Apr 24 1998 | GLOBALFOUNDRIES Inc | Method for assigning encryption keys |
| 6901548, | Mar 30 2000 | Sony Corporation | Coding apparatus, coding method and recording medium having coded program recorded therein, and decoding apparatus, decoding method and recording medium having decoded program recorded therein |
| 6912634, | Dec 28 2000 | MATSUSHITA ELECTRIC INDUSTRIAL CO , LTD | Verifying the integrity of a media key block by storing validation data in a validation area of media |
| 6947563, | Apr 24 1998 | GLOBALFOUNDRIES Inc | Method for assigning encryption keys |
| 6999947, | May 20 1998 | Fujitsu Limited | License devolution apparatus |
| 7010125, | Jan 26 2001 | Interntional Business Machines Corporation | Method for tracing traitor receivers in a broadcast encryption system |
| 7036024, | Jul 09 2002 | KALEIDESCAPE, INC | Detecting collusion among multiple recipients of fingerprinted information |
| 7039803, | Jan 26 2001 | International Business Machines Corporation | Method for broadcast encryption and key revocation of stateless receivers |
| 7046808, | Mar 24 2000 | Verance Corporation | Method and apparatus for detecting processing stages applied to a signal |
| 7057993, | Jan 29 2001 | Eastman Kodak Company | Copy protection using multiple security levels on a programmable CD-ROM |
| 7082537, | Sep 30 1999 | Kabushiki Kaisha Toshiba | Code generating method and unit thereof, code detecting method and unit thereof, and watermark embedding unit and watermark detecting unit |
| 7083132, | Sep 26 2003 | IRWIN, JERE F | Comminuting apparatus with multiple entrance openings |
| 7120901, | Oct 26 2001 | International Business Machines Corporation | Method and system for tracing and displaying execution of nested functions |
| 7155591, | Dec 28 2000 | Intel Corporation | Verifying the integrity of a media key block by storing validation data in the validation area of media |
| 7162646, | Dec 10 2002 | Industrial Technology Research Institute | Disk anti-copy system, method and its device |
| 7215629, | Jun 20 2002 | Seagate Technology LLC | Magnetic recording device for heat assisted magnetic recording |
| 7283633, | Jun 21 2000 | Sony Corporation | Information recording and/or reproducing method and information recording and/or reproducing device |
| 7296159, | Sep 23 2002 | International Business Machines Corporation | Key distribution in a conditional access system |
| 7305711, | Dec 10 2002 | Intel Corporation | Public key media key block |
| 7319752, | Sep 07 2000 | Sony Corporation | Information recording device, information playback device, information recording method, information playback method, and information recording medium and program providing medium used therewith |
| 7346169, | Jun 21 2000 | Sony Corporation | Information processing device and method |
| 7380132, | Jun 30 1995 | Sony Corporation | Data recording method and apparatus, data record medium and data reproducing method and apparatus |
| 7380137, | Jul 20 1999 | International Business Machines Corporation; Intel Corporation | Content guard system for copy protection of recordable media |
| 7392392, | Dec 13 2001 | DIGIMARC CORPORATION AN OREGON CORPORATION | Forensic digital watermarking with variable orientation and protocols |
| 20020003881, | |||
| 20020044320, | |||
| 20020104001, | |||
| 20020141582, | |||
| 20030070083, | |||
| 20030142826, | |||
| 20030169885, | |||
| 20030220921, | |||
| 20040034787, | |||
| 20040098593, | |||
| 20040111611, | |||
| 20040128259, | |||
| 20040133794, | |||
| 20040153941, | |||
| 20040172549, | |||
| 20050021568, | |||
| 20050097110, | |||
| 20050141704, | |||
| 20050283610, | |||
| 20060056695, | |||
| 20060085343, | |||
| 20060136728, | |||
| 20060239503, | |||
| 20060282676, | |||
| 20070025694, | |||
| 20070067242, | |||
| 20070067244, | |||
| 20070165853, | |||
| 20070174637, | |||
| 20080199007, | |||
| 20090193262, | |||
| 20090214031, | |||
| 20100043081, | |||
| JP2007043336, | |||
| WO48190, | |||
| WO122406, | |||
| WO9919822, |
| Executed on | Assignor | Assignee | Conveyance | Frame | Reel | Doc |
| Sep 12 2008 | DEEN, ROBERT GLENN | International Business Machines Corporation | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 022360 | /0911 | |
| Sep 14 2008 | LOTSPIECH, JEFFREY BRUCE | International Business Machines Corporation | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 022360 | /0911 | |
| Sep 15 2008 | BELLWOOD, THOMAS ALEXANDER | International Business Machines Corporation | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 022360 | /0911 | |
| Sep 15 2008 | JIN, HONGXIA | International Business Machines Corporation | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 022360 | /0911 | |
| Sep 15 2008 | NIN, SIGFREDO ISMAEL | International Business Machines Corporation | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 022360 | /0911 | |
| Sep 16 2008 | RUTKOWSKI, MATTHEW FRANCIS | International Business Machines Corporation | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 022360 | /0911 | |
| Jan 19 2009 | International Business Machines | (assignment on the face of the patent) | / |
| Date | Maintenance Fee Events |
| Apr 18 2017 | M1551: Payment of Maintenance Fee, 4th Year, Large Entity. |
| Jun 21 2021 | REM: Maintenance Fee Reminder Mailed. |
| Dec 06 2021 | EXP: Patent Expired for Failure to Pay Maintenance Fees. |
| Date | Maintenance Schedule |
| Oct 29 2016 | 4 years fee payment window open |
| Apr 29 2017 | 6 months grace period start (w surcharge) |
| Oct 29 2017 | patent expiry (for year 4) |
| Oct 29 2019 | 2 years to revive unintentionally abandoned end. (for year 4) |
| Oct 29 2020 | 8 years fee payment window open |
| Apr 29 2021 | 6 months grace period start (w surcharge) |
| Oct 29 2021 | patent expiry (for year 8) |
| Oct 29 2023 | 2 years to revive unintentionally abandoned end. (for year 8) |
| Oct 29 2024 | 12 years fee payment window open |
| Apr 29 2025 | 6 months grace period start (w surcharge) |
| Oct 29 2025 | patent expiry (for year 12) |
| Oct 29 2027 | 2 years to revive unintentionally abandoned end. (for year 12) |